Skip to main content

Notable Security Incidents

Collection of security incidents that happened in the Node.js, JavaScript and npm related communities from lirantal/awesome-nodejs-security

Analysis of an Exploited NPM Package by Jarrod Overson

Node’s npm carries over 210,000 packages from over 60,000 contributors. This wealth of open source functionality is awesome, but it also carries risk. You’re running a stranger’s code inside your applications. Do you know which packages you’re running? Do you know if their authors understand or care about security? Do you know if they have vulnerabilities?

Data security breaches

List of data breaches